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A TTRACT 

A device for securing computers is in the form of an internally 
installed computer card. The computer card plugs into an ISA bus slot in a 
PC. The computer card includes a computer interface and microcontroller. 
The microcontroller has inputs for motion, power and tamper sensors and 
communicates with an on board basic input/output system (BIOS) EEPROM 
fcr storing a BIOS security program and a serial EEPROM for storing security 
parameters and access passwords. The computer card includes a power 
circuit with NiCd batteries and a recharger for operating the device while the 
computer is off. The computer card is given a unique physical device 
address prior to installation. When the computer is powered up, the 
computer card is addressed by the computer during its BIOS start-up 
routine. The internal BIOS security program is then initialized, requiring a 
password before start-up continues. A password hierarchy provides for 
multiple levels of access to the security capabilities. 
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METHOD AND DEVif^ Fn q SECURING? rnMonTc^ 

This invention relates to securing computers and is particularly 
concerned with both physical security of computers and security of data 
5 stored therein. 



BACKGROUND OF THE INVENTION 

Methods and devices for securing computers are well known. 
Typically, the prior art addresses either physical security of the computer 
through lock or alarm systems or security of data stored on the computer 
through password protection. 

There have been a few proposals that address both physical and data 
security in a single apparatus. For example. Reinke et al. in U.S. Patent 
4.908.608 teach a security device with an alarm device. The software 
program, which activates the alarm device, is used like a kcv to enable and 
disable the alarm. Optionally, a password can be established, allowing a 
user owning the password, to enable and disable the alarm device. The 
alarm password entry may prevent unauthorized access to the computer. 
However, the operation of the alarm device depends upon the computer 
being booted. Thus, anyone having knowledge of the presence of such a 
device, could interrupt boot up the computer from the hard drive and 
continue from a disk-drive to edit the AUTOEXEC.BAT and CONFIG.SYS 
files to defeat the password feature. 

In fact any security system relying on the AUTOEXEC.BAT file during 
boot-up of an IBM compatible computer can be circumvented. 



30 



This problem has been recognized in a prior art device. 

McClung et al, in U.S. Patent No. 4.951.249 teach a computer 
security system for protecting the computer software from unauthorized 
use. During boot-up of the computer the scheme replaces the keyboard 
address and diskette address with addresses stored in ROM thereby locking 
out these devices. When unauthorized use of the keyboard or d.skette 
insertion are attempted the boot-up routine ignores such and continues into 
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the security program. Because the keyboard is locked out. this device 
requires an additional input device for an authorized user to login. A card 
reader is used, together with a personal identification number (PIN) to 
ach.evn this. Once the correct user has been thereby identified a password 
procedure is used to allow access to the computer. While this system may 
be effective at preventing overriding during boot-up, it requires an addition 
input device and user cards. Hence, it is more costly and may require more 
complex administrative support. 

SUMMARY OF INVENTION 

An object of the present invention is to provide an improved method 
and device for securing computers. 

In accordance w:th an aspect of the present invention there is 
provided a device for securing a computer comprising means for interfacing 
with the computer via a bus internal to the computer, means for monitoring 
status of the computer and for establishing an alarm condition responsive 
to a change in status, means for powering the device during intervals where 
the computer is in an off ..tate, means for interrupting normal start up of the 
computer during a basic input/cutput system portion thereof, and means for 
accepting a password from a user to continue normal start up of the 
computer. 

In accordance with another aspect of the present invention there is 
provided a method of securing a computer comprising the steps of providing 
storage for a stored password, during start up of the computer, upon 
addressing by the computer, initiating a program requesting -nput of the 
password, comparing the password input to the stored password, and 
allowing completion of start up of the computer to continue if the password 
input matches the password stored. 

In accordance with a further aspect of the present invention there 
provided a device for secunng a computer compr.s.ng a microcontroller, a 
plurality of security sensors connected to the microcontroller, an alarm 
output connected to the microcontroller, an interface connected tc the 
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microcontroller for communicating with an internal bus in the computer, a 
basic input and output system (BIOS) program store connected to the 
microcontroller and the interface, a memory decoder connected to the 
interface, the microcontroller and the BIOS program sto.e. a non-volatile 
store for security parameters and passwords, and a power circuit for 
powering the device during intervals when the computer is off. 

Advantages of the present invention include combining physical 
security of the computer with data security and providing password 
protection that cannot be bypassed by an informed user. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention will be further understood from the following 
description with reference to the drawings in which: 

FIG. 1 illustrates, in a block diagram, a computer security device in 
accordance with an embodiment of the present invention; 

FIG. 2a illustrates, in a step chart, the microcontroller software flow 
for the computer security device of FIG. 1; 

FIG. 2b illustrates, in a step chart, the microcontroller tasks for the 
computer security device of FIG. 1; and 

FIGS. 3a - 3e illustrate, in a step chart, a method of securing a 
computer through password verification during booting-up the computer in 
accordance with an embodiment of the present invention, using the 
computer security device of FIG. 1. 

Referring to FIG. 1 there is illustrated in the block diagram a computer 
security device in accordance with an embodiment of the present invention. 
The computer security device includes a computer card 10 having a PC ISA 
bus 12 and two RJ-1 1 jacks 14 and 16. The computer card 10 includes a 
microcontroller 18. a computer subcircuit 20. an alarm subcircuit 22 and a 
power subcircuit 24. The computer subcircuit 20 includes a PC bus 
interface 30. a nonvolatile memory, serial EEPROM 34, a BIOS program 
EPROM 36. and an address selector 38. The alarm subcircuit 22 includes 
motion/tilt detectors 40 and 42. an alarm relay 44 connected to RJ- 1 1 jack 
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16, an input line connected to RJ-1 1 jack 14. In addition the computer card 
includes an internal piezo transducer 50. Optional connection to an external 
alarm monitoring system is provided through the RJ-1 1 jack 16. A PC 
chassis tamper sensor 54 is connected via the line 46 and optional external 
tampers 56, 58 and 60 are connected serially through the RJ-1 1 jack 14. 

The microcontroller 18 on the computer card 10 provides secure and 
independent firmware based access control. The microcontroller 18 also 
provides a multi-channel analog to digital converter at a lower cost than 
discrete components. The microcontroller 18 provides the following 
functions: 

• Processing sensor lines as analog levels determining alarm and 
tamper states; 

• Filtering of sensor inputs to provide a measure of false alarm 
rejection; 

• Secure password verification in combination with BIOS 
program; 

• Piezo transducer control, timed alarm blast, warning blast, low 
battery chirp; 

• Read and act on option selection by jumper; 

• Drive external alarm system relay interface; and 

• Power supply monitoring. 

An example of a suitable microcontroller is a Microchip 16C74 
incorporating 4 Kbytes of ROM and 192 bytes of RAM, an onboard 8 input 
8 bit ADC, parallel 8 bit slave port, PWM module, a power up timer, a 
oscillator start-up timer, a watchdog timer, and communications ports. 

The computer subcircuit 20 and the microcontroller 18 handle the 
data security of the computer security device. In the computer subcircuit 
20, the microcontroller 18 communicates with the PC ISA bus 12 via the PC 
bus interface 30. The PC bus interface 30 includes the hardware interface 
to the ISA bus in the computer, that is bus drivers and latches necessary for 
an ISA bus interface. The PC bus interface may be implemented, for 
example by four 74ALS245 octal bus transceivers. 
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The serial EEPROM 34 stores security parameters and passwords for 
secure access to the computer under the control of the microcontroller 18 
and the BIOS EEPROM 36. The serial EEPROM 34 holds the current 
password(s). security parameters associated with each level of password 
and a real time count to support a limitation on password re-try. This 
information is not accessible from the PC bus for security reasons. There 
is no way to read out the password data from the PC under any 
circumstances. An example of a suitable serial EEPROM is a 1024-bit 
Microchip 24LC01 configured as 128x8. 

The BIOS EPROM 36 provides the program used during start-up of the 
computer to require the entry of a correct password and allows changing of 
passwords and security parameters, depending upon the security level of the 
password entered. The BIOS EPROM 36 is memory mapped so that it 
executes -jpon boot-up of the computer. Its programming requires a basic 
passwc.d entry sequence to be correctly completed before resuming and 
computing the boot-up process. The code supports a password edit 
function. 

Using a BIOS program affords a high level of security because 
execution cf this code cannot be interrupted or bypassed by an informed 
user. The BIOS program allows a hierarchy of several levels of operator, 
each with different capabilities. 

The address selector 38 is used, prior to installation of the computer 
card 10, to assign a computer device address for the computer card 10. 
The computer device address, which must be unique within the computer, 
ensures that \>e como»::«-r card 10 is addressed during the BIOS portion of 
startup of the rr .iputer. The address selector 38 uses a jumper block to 
enable the user to select different card addresses for compatibility with a 
wide variety of computers and configurations. Address decoding may be 
provided by. for example a Generic Array Logic (GAL) device, 16V8, that 
decode the BIOS address into user selectable 4000 H segments starting at 
C8000 H through DC000 H. 

Ths alarm subcrscuit 22 provides the alarm sensor inputs to the 
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microcontroller 18. The motion/tilt sensors 40 and 42 are oriented 
orthogonally to provide for either horizontal or vertical direction of the 
computer. On initialization, the microcontroller 18 senses which switch is 
"on- and which is "off". Any subsequent change in these state results in 
an alarm condition. The alarm relay 44 is a form C relay contact closure and 
is provided to interconnect the computer card 10 to a locally monitored 
security system. 

Tilt/motion sensors 40 and 42 detect tilting and course movements 
of the PC chassis typical of those experienced during unit relocation, are 
included on the circuit card. Two sensors are planned to detect movement 
conveniently and tilt in two axes, respectively. Sensors 40 and 42 are 
based on a mercury contact switch principle. 

The PC chassis tamper sensor 54 is provided to ensure that access 
to the computer hardware is detected. A combined switch contact-based 
and mercury switch sensor is contemplated. 

Two RJ- 1 1 jacks 14 and 1 6 are accessible at the rear of the computer 
for optional sensor or system interconnections. The first is provided to 
connect to a series string of peripheral tamper sensors for protecting 
keyboard, protector external devices. The second is the interface to an 
external alarm monitoring system. The internal piezo transducer or 
sonale-t device is the main source of alarm indication once a sensor detects 
an alarm condition. 

The power subcircuit 24 includes a battery charger 62, two AA NiCd 
batteries 64 and a step-up converter 66. The battery charger 62 is 
connected to the +5V power lead of the PC ISA bus 12 and provides a 
charge indicator signal to the microcontroller 18 and power to the NiCd 
batteries 64 and to the step-up converter 66. 

The battery charger 62 is included to re-charge the NiCd batteries 64 
when the computer is in the AC on state. An example of a suitable battery 
charger is a Benchmarq 2003. 

The step-up converter 66 has a + 5V DC output. The + SV DC 
output powers the alarm card 10 when the computer is in an "off" 
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condition. The piezo or sonalert voltage, provided by a separate 9 V battery 
(not shown in Fig. 1), powers the internal piezo transducer or sonalert when 
the computer is in an "off condition. The step-up converter 66 provides a 
low battery indication signal to the microcontroller 18. The step-up 
converter 66 steps the battery voltage from a nominal 2.4 V up to a higher 
voltage of 5 V for digital component function during AC off operation. It 
does not produce a higher voltage for the piezo transducer or sonalert. 
Many of these devices require higher drive voltages to achieve the full sound 
output level, hence a separate 9 V battery is provide for this purpose. An 
example of a suitable step-up converter is a Maxim 856. . 

Two AA NiCd batteries 64 are included in a battery holder on the 
computer card 10 for operation in the powered down state of the computer. 
It is estimated that these batteries would operate the system for one month 
without recharging. 

The option selector 52 is in the form of option set-up jumpers. These 
jumpers allow set-up of the features and modes of operation of the 
computer security device. Selectable functions may include the following 
features: 

• Hardware disable of the different sensor elements when they 
are not used; 

• Long or short time limit on alarm audio (e.g., 5 min or 30min.); 

• Silent operation, for those utilizing the alarm system 
interconnect; 

• BIOS disable for those wanting only component security, not 
data security; 

• Enable unsuccessful password (5) timeout feature, 30 min 
delay to retry; 

For security reasons, these jumpers are only read by the 
microcontroller upon entry of the highest level (Administrator) password, 
thus preventing the possibility of ? user or supervisor disabling the system. 
These features are hardware keyed by the option selector 52 for some 
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installations. Many of those same features jre security parameters 
selectable as software options, at; described here.nbelow in regard to Figs 
3a through 3e. 

Operation of the computer security device of Fig. 1 is described with 
5 reference to Figs. 2a anr^ b and 3a through e. 

In operation, the microcontroller 18 when powered up performs 
several actions as represented oy the step chart of Fig. 2a. Once 
operational, the microcontroller 18 performs several tasks as shown in Fig. 
2b. As represented by step 1 , the microcontroller 18 periodically measures 

10 the external tamper sensor input, RJ-1 1 14 and reports any deviation via the 
piezo trarib ivcer 50 and the alarm relay 44. An analog to digital converter 
is provided in the microcontroller 18 for analog inputs. The A/D converter 
digitizes alarm sensor input. The sensor input signal is then digitally filtered 
to reject false alarm conditions. As represented by step 2, tho 

15 microcontroller 18, via the analog inputs measures the battery voltages 
under load when the computer is powered up or reset or when instructed to 
do so by the BIOS program. As represented by step 3, the microcontroller 
18, through inputs configured as state change interrupts for the 
microLontrollei, monitors the low battery indication frcm the step up 

20 converter 66, the iilt.'motion set . .r$ 40 and 42, and chassis tamper sensor 
54 and reports any deviation via the piezo transducer 50 and the alarm relay 
44. As represented by step 4, the microcontroller 18, via the serial link 32 
checks the status of t.ie serial EFPROM as required, and may correct if 
possible. As represented by step 5, the microcontroller 18, oads the serial 

25 EEPROM with default pnrnmeters i? instructed to do so by the BIOS orogram 
or from hardware. 

Refernr.j to Figa. 3a through 3e the'e rj illustrated a step chart a 
method of * : inng a computei :n accordance with an embodiment of the 
present invention. The method refits upon password verification during 

30 booting up of the computer, m p irticular the bas;c input output systen 
(BIOS) portion thereof, usinj the computer security device of Fig. 1. 

As described hereinabove, the a.Mress selector 38 is set to provide 
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the computer security device, as embodied in the computer card 10. a 
physical device address for the computer during BIOS boot-up. When the 
computer card 10 is addressed an internal BIOS program, stored in the BIOS 
EEPROM 36 is initiated, as represented by step 1.0 of Fig. 3a. The 
remaining steps of the internal BIOS program are self-explanatory from Figs. 
3a-3e. 

While the present embodiment uses five (5) retries during password 
entry and verification, this number may be chosen to be any desired number. 

Preferably, a hierarchy of password protection is provided. For 
example, a three-level password hierarchy has a user password level, a 
supervisor password level, and an administration password level. Each level 
of password has an associated capability set. For exampr*, the following 
capabilities may be associated with each password level: 

User 

This is a simple access code that, when correctly entered, allows the 
normal processes in the computer boot sequence to complete. This access 
code allows unrestricted use of the computing facilities but maintains the 
integrity of the other security features. The ucer level only allows changing 
the password. In the present embodiment a User password consists of a 
four (4) alphanumeric characters. 



Su pervisor 

Entry of a password defined as supervisory level results in a simple 
text based menu bar appearing. Available functions are: 

• Edit User or Supervisor password 

Disable internal motion and peripheral sensors 

• Enable internal motion and peripheral sensors 

Lists current sensor status, enable, disable, alarm and tamper 
states 
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• Continue boot sequence 

When correctly entered, the internal motion/tilt sensors are disabled, until 
the computer is reset or turned off, at which time the sensors are re- 
enabled. In the present embodiment a Supervisor password consist? of a 
five (5) alphanumeric characters. 
Administrator 

Entry of the Administrator level password results in a text based menu bar 
appearing which has enhanced features. Available functions are: 

• Edit User, Supervisor or Administrator password 

• Disable internal motion & tamper and peripheral sensors 

• Enable internal motion & tamper and peripheral sensors 

• List current sensor status, enable/disable, alarm and tamper 
states 

• View security system diagnostic reports 

• Change security parameters, such as number of peripheral 
sensors, enable/disable of warning chirp, low battery chirp, 
password entry and choosing password time-out period, alarm 
duration, menu language 

• Continue boot up sequence 

When correctly entered, the internal motion/tilt sensors are disabled, until 
the computer is reset or turned off, at which time the sensors are re- 
enabled; In the present embodiment a Administrator password consists of 
a six (6) alphanumeric characters. 
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WHAT IS CLAIMED IS: 

t. A device for securing a computer comprising: 
means for interfacing with the computer via a bus internal to the 
computer; 

means for monitoring status of the computer and for establishing an 
alarm condition responsive to a change in status; 

means for powering the device during intervals where the computer 
is in an off state; 

means for interrupting normal start-up of the computer during a basic 
input/output system portion thereof; and 

means for accepting a password from a user to continue normal start- 
up of the computer. 

2. A device as claimed in claim 1 wherein the means for 
monitoring includes means for sensing a plurality of conditions of the 
computer and means for enabling the means for sensing. 

3. A device as claimed in claim 1 wherein the means for 
interrupting normal start-up includes address decoding means for providing 
a physical device address to the computer during start-up. 

4. A device as claimed in claim 1 wherein the means for 
interrupting normal start-up includes program storage means for storing a 
basic input and output system (BIOS) program whereby addressing of the 
device by the computer during start-up initiates the BIOS program. 

5. A device as claimed in claim 1 wherein the means for accepting 
a password includes a non-volatile merv.ory means for storing the password 
to be compared to the password entered by the user. 

6. A device as claimed in claim 5 wherein the non-volatile memor / 
means cannot be read by a user of the computer. 
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7. A device as claimed in claim 1 wherein the means for powering 
includes rechargeable battery means. 

8. A device as claimed in claim 1 wherein the means for powering 
includes battery charger means. 

9. A method of securing a computer comprising the steps of: 
providing storage for a stored password; 

during start-up of the computer, upon addressing by the computer, 

initiating a program requesting input of the password; 

comparing the password input to the stored password; and 
allowing completion of start-up of the computer to continue if the 

password input matches the password stored. 

10. A method as claimed in claim 9 further comprising the step of 
prompting a user of the computer to change the stored password, prior to 
the step of allowing completion of start-up of the computer. 

1 1 . A method as claimed in claim 9 further comprising the steps of 
providing security .nonitoring sensors and providing storage for security 
parameters for configuring the security monitoring sensors; and 

prompting a user of the computer to change the security parameters 
prior to the step of allowing completion of start-up of the computer. 

1 2. A device for securing a computer comprising: 
a microcontroller; 

a plurality of security sensors connected to the microcontroller; 

an alarm output connected ta the microcontroller; 

an interface connected to the microcontroller for communicating with 
an internal bus in the computer; 

a basic input and output system (BIOS) program store connected to 
the microcontroller and the interface; 



2187855 

- 13 - 

a memory decoder connected to the interface, the microcontroller and 
the BIOS program store; 

a non-volatile store for security parameters and passwords; and 
a power circuit for powering the device during intervals when the 
computer is off. 

13. A device as claimed in claim 12 wherein the microcontroller 
includes an analog to digital converter. 

14. A device as claimed in claim 1 2 wherein the plurality c ; security 
sensors includes a tilt and motion sensor 

1 5. A device as claimed in claim 1 2 whe. ein the plurality of security 
sensors includes a low battery sensor. 

1 6. A device as claimed in claim 1 2 wherein the plurality of security 
sensors includes a battery voltage sensor. 

1 7. A device as claimed in claim 1 2 wherein the plurality of security 
sensors includes a compuier chassis tamper sensor. 

1 8. A device as claimed in claim 1 2 wherein the plurality of security 
sensors includes * peripheral tamper sensor. 

19. A device as claimed .n claim 12 wherein the alarm output - 
includes a piezo transducer. 



20. A device as claimed in claim 12 wherein ths alarm output 
includes an external alarm system connection. 



2187855 



PC ISA Bus 



FastNICd 

Battery 
. Charger 



Two AA 

NiCd 
Batteries 



66 



V 



V 

62 

Fast 
Charge 



Step up Voltage 
Converter 



"T 

24 



+5 
Vdc 



f 



i 



PC Bus 
Interface 



30 



I 



Memory 
Decode 



BIOS 
EEPROM 



36 





Low Battery 



Battery Voltages - 
Power OK/Reset- 



i 



♦ 

BIOS Addr 
vifig 



38 



34 



Serial 
EEPR OM 

3 



] 



8-Bit 
Microcontroller 
with ADC 



Internal 
Transducer 



50 



10 



22^ 



40 



42 



46 



Motion/ 




Motion/ 


Tilt 




Titt 


St .sor 




Sensor 



7" 

20 



44 



AJarm 
Relay 



76 



nj-ii 




Jack 

A 1 





RJ-11 
Jack 



Optional 




External 




Tamper 





60 




To 

'4 external 
alarm 
monitoring 
system 



Fig. i 



Gowling, Strathy &. Henderson 



2187855 



Step 


Status 


Event 


Action 


10 


Microcontroller 
is powered down 


User powers up micro- 
controller 

Microcontroller 
determines that there 
is a ROM or RAM error 

Microcontroller 
determines that there 
is a EEPROM error 
bad pan or bad data 

Microcontroller 
executes code as per 
default parameters 
until instructions from 
BIOS updated 


Microcontroller performs self 
tests (ROM. RAM. EEPROM) 

Attempts to signal BIOS of 
error 

Attempts to signal BIOS of 
bad part 

If jusl bad data, then 
default parameters loaded 



Fig. 2a 



Step 


Tasks for microcontroller 


1 


Periodically measure external tamper sensor input and report any deviation 


2 


Measure battery voltages under load when computer powered up reset or 
otherwise instructed to do so by BIOS M <«seior 


3 


devlafciJ 10 battery- ti ' t ^ ° haSSiS ,amper indication s and report any 


4 


Check status of EEPROM as required, coned if possible 


5 


Load EEPROM with default if instructed from BIOS or hardware 



Fig. 2b 



Govling. Slralhy & Henderson 



2187855 



Step 
1.0 



Status 
Computer OFF 



I i Security inoperative 



1.2 



13 



1.4 



2.0 



2.0.1 



2 1 



2.1 1 



2.1.2 



2 1 3 



Security power up 
screen displayed 



Password entered 



Invalid password 
entered 

Allowed password 
attemps made 

Keyboard enrty 
denied 

Valid password has 
been recognized 



Event 

User turns computer ON 



BIOS executes security 
self-test 

Not further actions 
permitted 

Executes Battery tests 



Check EEPROM 

Check for 
password time out 

Password entry 

User enters 
Password 

Password validity 
and number of 
attempts checked 



Password entry 
timeout invoked 

Time-out expired 



Password level 
checked 



Fig. 3a 



Action 

Computer executes BIOS code 
and displays power up screen 

If tests failed goto step 1.1. 
if passed goto step 1.2 

BIOS displays a warning 
message 

BIOS displays appropriate 
message 

BIOS displays appropriate 
message 

If time out in effect, goto step 
2:1.2. if not goto 2 0 

BIOS prompts for password 
entry 

BIOS displays block character 

If invalid goto 2. 1 . 1 , If attemps 
number exceeded goto 2.1 2. if 
valid goto 2.1.3 

BIOS displays a password 
retry screen, goes to 2 0 

BlOSdi' lays a password 
time-out xeen 

Number of attemps deared 
loops to 2 0 

BIOS determines ifPassword 
level is: user goto 3 0. 
supervisor goto 4.0. 
administrator goto 5 0 



Cowling, Strathy & HenJerso 



2187855 



Step 


> Status 


Event 


Action 


3.0 
30 1 


Vatid User 
password 
J entered 

J User has entered 
a keystroke 

User password 
to be changed 


User prompted for input 

BIOS checks keystroke 

Prompt for new User 
Password 

New password 
entered 


BIOS displays user prompt ~| 
screen, press any key to 
continue. F1 to change 
password 

If F1 goto 3.0. t. else computer 
powers up. internal motion 1 
sensors disabled 

BIOS displays user password 1 
screen 

BIOS displays block 
characters 


3 0.2 


Invalid 
replacement 


BIOS checks number of 
characters e.g. 4 


If invalid goto 3.0.2 1 
If valid goto 3.0.3 

BIOS informs user of invalid 1 
password.retumto3.0 


3 0 3 


First entry valid 


Verify new password 

User password 
re-entered 


BIOS displays User password 
verification screen 

BIOS displays block characters 


3.0.4 \ 
IF 


i 

/alid new User 
'assword 


3ICS compares to 
first entry 

3 assword stored in 
lonvolatile ROM 


If invalid qoto 3 0 2 1 
f valid goto 3.0.4 1 

BIOS displays new password 
accepted 

Return to 3 0 1 



F/g. 3b 



GowHm*. Strstky & Henderson 



2187855 



Step 
40 



40 1 



402 



4 0 3 -irst entry valid 



Status 

Valid Supervisor 

password 

entered 



User has entered 
a keystroke 



Super, password 
to be changed 



Invalid 

r eplacement 

Dassword 



404 



4 1 



11 



Valid new Super. 
D assword 

Security 

Parameters to be 
:hanged 



To change No. of 
tamper sensors 



Event 



User prompted for input 



BIOS checks keystroke 



Prompt for new Super. 
Password 

New Super, password 
entered 

BIOS checks number of 
characters e g 5 



Verify new password 

Super, password 
re-entered 
BIOS compares to 
first entry 

Password stored in 
nonvolatile ROM 

Obtain current 
status 



New number, 
entered 



Action 



Fig. 3c 



BIOS displays user prompt 
screen, press any key to 
continue. F1 to change User 
password. F2 to change 
Supervisor password. F4 to 
change security parameters 
If F1 goto 3.0. 1.F2 goto 4.0 1 
F4 goto 4. 1 else computer 
powers up. Internal motion 
sensors disabled 
BIOS displays Super, 
password screen 

BIOS splays block 
characters 

If invalid goto 4 0.2 

If valid goto 4.0 3 

BIOS informs user of invalid 

password.retum to 3 0 * 



BIOS displays Super, password 

verification screen 

BIOS displays block characters 

If invalid goto 4 0.2 
If valid goto 4.0.4 

BIOS displays new password 
accepted Return to call point 

BIOS displays status and 
instructions: If F7 toggle 
parameter and goto 4. 1 , if F8 
goto 4.1.1 if Esc goto 4 0 

BIOS prompts for new number. 

BIOS checks validity, if valid 
make change and goto ♦ 1 
If invalid BIOS displays error 
message, then goto 4 1 
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Step Status 



5.0 



5 0.1 



Event 



Valid 

Administrator 

password 

entered 



User prompted for input 



User has entered 
a keystroke 



Admin, password 
to be changed 



BIOS checks keystroke 



502 Invalid 

replacement 
password 



5.03 



0.4 



First entry valid 



Valid new Super. 
Password 



'rompt for new Admin. 
Password 

tew Admin password 
entered 

3IOS checks number of 
Wacters e.g. 6 



Verify new password 

Mmin. password 
re-entered 
BIOS compares to 
first entry 

Password stored in 
nonvolatile ROM 



Action 



BIOS displays user prompt 
screen, press any key to 
continue. F1 to change User 
password. F2 to change 
Supervisor password. F3 to 
change Administrator 
password. F4 to change 
security parameters. F5 to 
view Diagnostic Report. F6 to 
test Security system 
WF1 goto 3.0.1. F2goto4 0 1 
F3 goto 5.0. 1 . F4 goto 5. 1 . F5 
goto 5.2. F6 goto 5.3. else 
computer powers up. internal 
motion sensors disabled 

BIOS displays Admin. 
password screen 



BIOS displays btocfc 
characters 

If invalid goto 5.0.2 
If valid goto 5.0.3 

BIOS informs user of invalid 
password.return to call point 

BIOS displays Admin, password 

venficatton screen 

BIOS displays block characters 

If invalid goto 5.0 2 
If valid goto 5.0.4 

BIOS displays new password 
accepted. Return to call point 



Fig. 3d 
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Step 


> Status 


Event 


Action 


5.02 


Invalid 

replacement 

password 




BIOS informs user of invalid 
password, return to call point 


50.3 


First entry valid 


Verify new password 

Admin, password 
reentered 

BIOS compares to 
first entry 


BIOS displays Admin password 
verification screen 

BIOS displays block characters 

If invalid goto 5.0.2 
If valid goto 5 0.4 


504 


Valid new Super. 
Password 


Password stored in 
nonvolatile ROM 


BIOS displays new password 
accepted. Return to call point 


5 1 


Security 

Parameters to be 
changed 


Obtain current 
status 


BIOS displays status and 
instructions: If F7 toggle 
parameter and goto 5. 1 . if F8 
goto 5. 11 if F9goto 5.4. if Esc 
goto 5.0 


5.1.1 


To change No. of 
tamper sensors 


New number, 
entered 


BIOS prompts for new number 
BIOS checks validity, if valid 
make change and goto 5. 1 
If invalid BIOS displays error 
message, then goto 5.1 


5 2 


^idyiiubiic repon 
requested 


BIOS obtains status 


BIOS displays diagnostic report 
If Esc. goto 5.0 


53 


Security system 
test reaue^fpri 


BIOS displays test 
menu 


BIOS displays test menu 
Do menu item if selected and 
goto 5.3. if Esc. turn off devices 
and goto 5.0 


54 


Additional 
features 

requested ] 
— ■ — 


BIOS displays 
additional feature 
nenu 


BIOS displays additional 
features menu 

Do menu item if selected and 
goto 5 4. if Esc goto 5 1 



Fig. 3e 
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